| Title | SourceCodester SourceCodester Pisay Online E-Learning System using PHP/MySQL 1.0 /lesson/controller.php Unrestricted Upload V1.0 Unrestricted Upload |
|---|
| Description | Found that the file upload operation was triggered in /lesson/controller.php, and the _FAILE variable was used to receive the payload. After receiving the attack vector from a remote attacker, it will result in unrestricted uploads, and remote attacks may lead to RCE.
The input obtained from doInsert at line 36 in the admin/modules/less/controller.php file is used at line 37 in the /admin/ modules/less/controller.php file to determine the location of the file to be written, which may allow attackers to modify or damage the content of the file, or create a brand new file. |
|---|
| Source | ⚠️ https://github.com/CveSecLook/cve/issues/19 |
|---|
| User | laowang (UID 68358) |
|---|
| Submission | 04/30/2024 12:19 (2 years ago) |
|---|
| Moderation | 04/30/2024 16:20 (4 hours later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 262489 [SourceCodester Pisay Online E-Learning System 1.0 /lesson/controller.php File unrestricted upload] |
|---|
| Points | 20 |
|---|